
United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 

Address: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 
www.usplo.gov 



APPLICATION NO. 



FILING DATE 



FIRST NAMED INVENTOR 



| ATTORNEY DOCKET NO. | CONFIRMATION NO. ~~| 



10/006,308 



12/06/2001 



Kin Doc 



25920 7590 05/24/2006 

MARTINE PENILLA & GENCARELLA, LLP 
710 LAKE WAY DRIVE 
SUITE 200 

SUNNYVALE, CA 94085 



ADAPP201A 



2794 



EXAMINER 



] 



CHAI, LONGBIT 



ART UNIT 



PAPER NUMBER 



2131 

DATE MAILED: 05/24/2006 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



Office Action Summary 


Application No. 

10/006,308 


Applicant(s) 

DOE ET AL 


Examiner 

Longbit Chai 


Art Unit 

2131 





-- The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)13 Responsive to communication(s) filed on 08 May 2006 . 
2a)D This action is FINAL. 2b)E3 This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) S Claim(s) 1-7.9.10 and 12-22 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) S Claim(s) 1-7.9.10 and 12-22 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) Q Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) H The drawing(s) filed on 15 February 2002 is/are: a)E] accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Sortie * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attachment(s) 

1) [3 Notice of References Cited (PTO-892) 4) □ Interview Summary (PTO-413) 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) □ Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5 ) d Notice of Informal Patent Application (PTO-152) 

Paper No(s)/Mail Date . 6) □ Other: . 

U.S. Patent and Trademark Office " 

PTOL-326 (Rev. 7-05) Office Action Summary Part of Paper No./Mail Date 20060518 



Application/Control Number: 10/006,308 
Art Unit: 2131 



Page 2 



DETAILED ACTION 

1. Original application contained claims 1 - 20. Presently, pending claims are 1 - 
7, 9, 10 and 12-22. 

Response to Arguments 

2. Applicant's arguments filed on 5/8/2006 with respect to instant claims have been 
fully considered and, as a result, the finality of a rejection is withdrawn in order to apply 
a new ground of rejection. 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

A person shall be entitled to a patent unless - 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 1, 7, 9, 16- 19, 21 and 22 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Tsuria (U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 
2002/0191793), and in view of Vu et al. (U.S. Patent 6557104). 
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As per claim 1 , Tsuria teaches an apparatus to enable operation of a computer 
by authorized users when in a secure mode of operation, the apparatus comprising: 

a hub, the hub being configured to be portable and in communication with the 
computer (Tsuria: Column 6 Line 57 - 62 and Figure 1: IRD (Integrated Receiver- 
Decoder) is interpreted as the hub) the hub further including, 

an installed system tray program configured to allow customization of hub 
features; a card reader (Tsuria: Column 9 Line 1 - 14); 

a hub microprocessor (Tsuria: Figure 1 ) 

an encryption engine configured to encrypt / decrypt data communications 
between the hub and a data storage device protected by the hub (Tsuria: Column 6 
Line56 - Column 7 Line 57) including: 

a plurality of encryption/decryption channels (Tsuria: Column 9 Line 66 - Column 
10 Line 40 and Figure 1); 

Tsuria teaches an encryption channel and decryption channel can be 
simultaneously passed through the hub device (Tsuria: Column 9 Line 66 - Column 10 
Line 40 and Figure 1). However, Tsuria does not disclose expressly a control logic that 
is configured to determine which encryption / decryption channel is available and direct 
encrypted data passing through the hub available encryption / decryption channel. 

Anand teaches a control logic that is configured to determine which encryption / 
decryption channel is available and direct encrypted data passing through the hub 
available encryption / decryption channel (Anand: Figure 7 & 2, Abstract Line 9-15, 
Para [0058] Last sentence and Para [0122]). 
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It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Anand within the system of Tsuria 
because Anand teaches improving processor efficiency of a network device by a 
cryptographic processor that uses multiple independent channels and supports 
pipelining for efficient use of processor (Anand: Para [0012]). 

a card, the card being configured for insertion into the card reader, the card 
including a card microprocessor (Tsuria: Column 9 Line 1 - 14 & Figure 1 / Element 
120); and 

However, Tsuria as modified does not disclose expressly a user authentication 
device, the user authentication device being configured to validate the user as an 
authorized user of the card wherein, if the user is validated as the authorized user, the 
card microprocessor being configured to pass a key to the hub microprocessor in 
response to the validation of the user as the authorized user of the card, thereby 
activating the encryption engine of the hub to allow encryption / decryption of data 
communications. 

Vu teaches a user authentication device, the user authentication device being 
configured to validate the user as an authorized user of the card wherein, if the user is 
validated as the authorized user, the card microprocessor being configured to pass a 
key to the hub microprocessor in response to the validation of the user as the 
authorized user of the card (Vu: Column 4 Line 52 - 54), thereby activating the 
encryption engine of the hub to operate in the secure mode of operation (Vu: Column 5 
Line 24-46). 
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It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Vu within the system of Tsuria as 
modified because Vu teaches providing secure storage and processing of cryptographic 
keys using in a more reliable secure processor mode / memory (Vu: Column 2 Line 53 - 
61). 

As per claim 16, claim 16 encompasses the scope at least as described in claim 
1 and besides that, in further regards to claim 1 , Tsuria as modified further teaches 
upon the insertion of the smart card into the card reader, a secure path is established 
between the smart card microprocessor and the ECD microprocessor after completion 
of authentication of a user and completion of a challenge/response protocol, thereby 
unlocking an encryption engine to allow encryption / decryption of encrypted data 
communications (Vu: Column 1 Line 38 - 48). 

As per claim 7, Tsuria as modified teaches the card microprocessor includes a 
cryptographic microprocessor (Vu: Column 2 Line 1 - 25). 

As per claim 9, Tsuria as modified teaches the hub includes control switches to 
bypass the hub to operate the computer in a non-secure mode of operation (Vu: 
Column 2 Line 53-61: control switches is a logical switches between the process of 
secure and non-secure operating modes). 
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As per claim 17, Tsuria as modified teaches the ECD includes the data storage 
medium (Vu: Column 5 Line 35 - 36). 

As per claim 18, Tsuria as modified teaches the data storage medium is a virtual 
drive of the computer (Vu: Column 1 Line 35 - 40). 

As per claim 19, Tsuria as modified teaches the continued presence of a user is 
monitored (Vu: Column 6 Line 28 - 30: PIN may be continued to be requested at 
different stages of oprations). 

As per claim 21 , Tsuria as modified teaches the ECD is configured to effectuate 
modifying of encrypted data (Vu: Column 6 Line 28 - 30: Authentication and validation 
of a user are required to unlock the cryptographic key of the system device in order for 
the user to gain access to the encryption/decryption functionality, which includes create, 
modify or copy encrypted data). 

As per claim 22, Tsuria as modified teaches the ECD includes an installed 
memory tray program configured to allow customization of ECD features (Vu: Column 2 
Line 53 - 61 and Column 6 Line 28 - 30: configurable to allow for user customization to 
the level of security desired by the user such as secure and non-secure mode through 
the user entry of PIN). 
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4. Claims 1, 5-6, 10 and 12 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Tsuria (U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 
2002/0191793), and in view of Veil et al. (U.S. Patent 6092202). 

As per claim 1 , Tsuria teaches an apparatus to enable operation of a computer 
by authorized users when in a secure mode of operation, the apparatus comprising: 

a hub, the hub being configured to be portable and in communication with the 
computer (Tsuria: Column 6 Line 57-62 and Figure 1: IRD (Integrated Receiver- 
Decoder) is interpreted as the hub) the hub further including, 

an installed system tray program configured to allow customization of hub 
features; a card reader (Tsuria: Column 9 Line 1 - 14); 

a hub microprocessor (Tsuria: Figure 1) 

an encryption engine configured to encrypt / decrypt data communications 
between the hub and a data storage device protected by the hub (Tsuria: Column 6 
Line56 - Column 7 Line 57) including: 

a plurality of encryption/decryption channels (Tsuria: Column 9 Line 66 - Column 
10 Line 40 and Figure 1); 

Tsuria teaches an encryption channel and decryption channel can be 
simultaneously passed through the hub device (Tsuria: Column 9 Line 66 - Column 10 
Line 40 and Figure 1). However, Tsuria does not disclose expressly a control logic that 
is configured to determine which encryption / decryption channel is available and direct 
encrypted data passing through the hub available encryption / decryption channel. 
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Anand teaches a control logic that is configured to determine which encryption / 
decryption channel is available and direct encrypted data passing through the hub 
available encryption / decryption channel (Anand: Figure 7 & 2, Abstract Line 9-15, 
Para [0058] Last sentence and Para [0122]). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Anand within the system of Tsuria 
because Anand teaches improving processor efficiency of a network device by a 
cryptographic processor that uses multiple independent channels and supports 
pipelining for efficient use of processor (Anand: Para [0012]). 

a card, the card being configured for insertion into the card reader, the card 
including a card microprocessor (Tsuria: Column 9 Line 1 - 14 & Figure 1 / Element 
120); and 

However, Tsuria as modified does not disclose expressly a user authentication 
device, the user authentication device being configured to validate the user as an 
authorized user of the card wherein, if the user is validated as the authorized user, the 
card microprocessor being configured to pass a key to the hub microprocessor in 
response to the validation of the user as the authorized user of the card, thereby 
activating the encryption engine of the hub to allow encryption / decryption of data 
communications. 

Veil teaches a user authentication device, the user authentication device being 
configured to validate the user as an authorized user of the card wherein, if the user is 
validated as the authorized user, the card microprocessor being configured to pass a 
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key to the hub microprocessor in response to the validation of the user as the 
authorized user of the card, thereby activating the encryption engine of the hub to 
operate in the secure mode of operation (Veil: Column 12 Line 4-12). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Veil within the system of Tsuria as 
modified because Veil teaches providing secure transaction of computer systems in a 
more reliable, easier implementation and cost effective manners (Veil: Column 1 Line 5 
- 20 and Column 3 Line 30 - 36). 

As per claim 10, claim 10 encompasses the scope at least as described in claim 
1 and besides that, in further regards to claim 1 , Tsuria as modified further teaches the 
card being adapted to be read by the card reader to validate a user as an authorized 
owner of the card in conjunction with the biometric identifier, wherein upon validation of 
the user, the encryption engine activates to create a secure environment (Veil: Column 
12 Line 4 -12). 

As per claim 5, Tsuria as modified teaches the user authentication device is a 
biometric scanner (Veil: Column 12 Line 4 - 12). 

As per claim 6, Tsuria as modified teaches the biometric scanner scans one of a 
fingerprint, an iris and a face (Veil: Column 12 Line 4-12). 



Application/Control Number: 10/006,308 Page 10 

Art Unit: 2131 

As per claim 12, Tsuria as modified teaches the encryption engine executes RSA 
public-key cryptosystem (Veil: Column 4 Line 46 - 55). 

5. Claims 2 - 4 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Tsuria (U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 2002/0191793), in 
view of Vu et al. (U.S. Patent 6557104), and in view of Morais et al. (U.S. Patent 
2003/0093669). 

As per claim 2, Tsuria as modified does not teach the hub includes a plurality of 
USB ports. 

Morais teaches the hub includes a plurality of USB ports (Morais: Para [0033] 
and Para [0036]). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Morais within the system of Tsuria as 
modified because Morais teaches establishing secure communications between 
computer systems connected in a networking environment (Morais: Para [0001]). 

As per claim 3, Tsuria as modified does not teach the hub includes a plurality of 
FIREWIRE ports. 

Morais teaches the hub includes a plurality of FIREWIRE ports (Morais: Para 
[0033] and Para [0036]). 

Same rationale of combination applies herein as above in rejecting the claim 2. 
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As per claim 4, Tsuria as modified does not teach the computer is connected to 
the hub through one of a USB or FIREWIRE interface. 

Morais teaches the computer is connected to the hub through one of a USB or 
FIREWIRE interface (Morais: Para [0033] and Para [0036]). 

Same rationale of combination applies herein as above in rejecting the claim 2. 

6. Claim 13 is rejected under 35 U.S.C. 103(a) as being unpatentable over Tsuria 
(U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 2002/0191793), in view of 
Veil et al. (U.S. Patent 6092202), in view of Lelong et al. (PN: 6463540). 

As per claim 13, Tsuria as modified does not disclose expressly the encryption 
control device is hot pluggable. 

Lelong teaches the encryption control device is hot pluggable (Lelong: Column 1 
Line 52). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Lelong within the system of Tsuria as 
modified because Lelong teaches a more flexible and dynamic mechanism of an 
attachable interface of computer systems (Lelong: Column 1 Line 45 - 52). 

7. Claim 14 is rejected under 35 U.S.C. 103(a) as being unpatentable over Tsuria 
(U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 2002/0191793), in view of 
Veil et al. (U.S. Patent 6092202), in view of Walter et al. (U.S. Patent 6151677). 
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As per claim 14, Tsuria as modified does not disclose expressly the encryption 
engine is a field programmable gate array. 

Walter teaches the encryption engine is a field programmable gate array (Walter: 
Column 3 Line 56-57). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Walter within the system of Tsuria as 
modified because Walter teaches providing a more flexible and secure method by using 
a programmable information security architecture with a firmware implemented data 
encryption and decryption algorithms (Walter: Column 3 Line 50-61). 

8. Claim 15 is rejected under 35 U.S.C. 103(a) as being unpatentable over Tsuria 
(U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 2002/0191793), in view of 
Veil et al. (U.S. Patent 6092202), in view of Vu et al. (PN: 6557104). 

As per claim 15, Tsuria as modified does not disclose expressly the card includes 
a card microprocessor, the card microprocessor being configured to execute a 
challenge/response protocol for establishing a secure path through the encryption 
control device. 

Vu teaches the card includes a card microprocessor (Vu: Column 2 Line 1 - 25), 
the card microprocessor being configured to execute a challenge/response protocol for 
establishing a secure path through the encryption control device (Vu: Column 1 Line 34 
-46). 
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It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Vu within the system of Tsuria as 
modified because Vu teaches an enhanced security system for secure processing of 
cryptographic keys (Vu: Column 1 Line 7 - 9). 

9. Claim 20 is rejected under 35 U.S.C. 103(a) as being unpatentable over Tsuria 
(U.S. Patent 6178242), in view of Anand et al. (U.S. Patent 2002/0191793), in view of 
Vu et al. (U.S. Patent 6557104), and in view of Miller (PN: 6038320). 

As per claim 20, Tsuria as modified does not disclose expressly the ECD is 
locked by a hot key sequence. 

Miller teaches the ECD is locked by a hot key sequence (Miller: Column 1 Line 
41-42). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Miller within the system of Tsuria as 
modified because Miller teaches a flexible and enhanced security method to securely 
protect the computer from unauthorized access (Miller: Column 1 Line 40 - 47). 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Longbit Chai whose telephone number is 571-272-3788. 
The examiner can normally be reached on Monday-Friday 8:00am-4:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on 571-272-3795. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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